Blog | G5 Cyber Security

Sitecore XP RCE flaw patched last month now actively exploited

The Australian Cyber Security Center (ACSC) is alerting web admins of the active exploitation of a remote code execution flaw in the Sitecore Experience Platform (Sitecore XP) Sitecore XP is an enterprise-level content management system with data analytics (CMS) used by well-known companies, including American Express, IKEA, Carnival Cruise Lines, L’Oral, and Volvo. The vulnerability does not require authentication and it allows any remote attacker to exploit a vulnerable server and gain complete control over it.”]

Source: https://www.bleepingcomputer.com/news/security/sitecore-xp-rce-flaw-patched-last-month-now-actively-exploited/

Exit mobile version